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Amendments to the Claims 

The claims are unamended. The currently pending claims are listed below. 



1 1 . (Original) An apparatus having a digital protection mechanism, comprising: 

2 a tangible object; 

3 a digital protection system attached to said tangible object, said digital protection system 

4 comprising: 

5 (a) an external interface for receiving data requests; 

6 (b) a processor coupled to said external interface, said processor capable of transforming 

7 data according to a first public/private key encryption algorithm; and 

8 (c) an internal data storage, said internal data storage storing an identity private key, said 

9 identity private key being inaccessible outside said external interface; and 

10 a data descriptor associated with said digital protection system, said data descriptor 

1 1 including an identity public key, attribute data and a digital signature; 

12 wherein said processor performs a first transformation of data responsive to a request 

13 received through said external interface, said processor performing said first transformation of 

14 said data according to said first public/private key encryption algorithm using said identity private 

1 5 key, wherein a second transformation of data according to said first public private key encryption 

16 algorithm using said identity public key is a complementary transformation of said first 

1 7 transformation. 

1 2. (Original) The apparatus of claim 1, wherein said digital signature is an encryption of data 

2 derived from said identity public key and attribute data, said encryption being according to a 

3 second public private key encryption algorithm using a signature private key, said digital 

4 signature being capable of decoding according to said second public/private key encryption 

5 algorithm using a signature public key. 
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1 3. (Original) The apparatus of claim 2, wherein said digital signature is an encryption of data 

2 derived from said identity public key and attribute data by performing a pre-defined hash function. 

1 4. (Original) The apparatus of claim 1, wherein said digital protection system is 

2 implemented in digital logic contained on a single integrated circuit substrate. 

1 5. (Original) The apparatus of claim 4, wherein said data descriptor is stored in said internal 

2 data storage contained on said single integrated circuit substrate. 

1 6. (Original) The apparatus of claim 1 , wherein at least a portion of said data descriptor is 

2 stored in data storage external to said external interface of said digital protection system. 

1 7. (Original) The apparatus of claim 1, wherein said tangible object is a digital data 

2 processing device having at least one processor external to said digital protection system, said 

3 processor external to said digital protection system communicating with said digital protection 

4 system across said interface. 

1 8. (Original) The apparatus of claim 1, wherein said external interface mates with a 

2 corresponding interface of a digital data processing device separate from said tangible object. 

1 9. (Original) The apparatus of claim 1, wherein at least a portion of said attribute data is 

2 encrypted. 
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1 1 0. (Original) A method for using verified information concerning a tangible object, 

2 comprising the steps of: 

3 accessing descriptor data associated with the tangible object, said descriptor data including 

4 an identity public key for transforming data according to a first public/private key encryption 

5 algorithm, attribute data containing information concerning said tangible object, and a digital 

6 signature; 

7 verifying that said digital signature matches said identity public key and said attribute data; 

8 performing a pair of complementary data transformations on source test data to produce 

9 resultant test data, said pair of complementary data transformations being performed by: 

10 (a) performing a first data transformation according to said first public/private key 

1 1 encryption algorithm using said identity public key, and 

12 (b) accessing a digital protection system attached to said tangible object to perform a 

1 3 second data transformation according to said first public/private key encryption algorithm using 

14 an identity private key in said digital protection system, said identity private key corresponding to 

15 said identity public key according to said first public/private key encryption algorithm, said 

16 second data transformation being complementary to said first data transformation; 

1 7 comparing said source test data with said resultant test data; and 

1 8 using said attribute data in a manner dependent on the results of said step of verifying that 

19 said digital signature matches said identity public key and said attribute data, and said step of 

20 comparing said source test data with said resultant test data. 
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1 11. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said digital signature represents an encryption of data derived from said identity 

3 public key and said attribute data according to a derivation algorithm, said encryption being 

4 according to a second public/private key encryption algorithm using a signature private key, and 

5 wherein said step of verifying that said digital signature matches said identity public key and said 

6 attribute data comprises: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 1 2. (Original) The method for using verified information concerning a tangible object of 

2 claim 1 1 , wherein said derivation algorithm comprises a hash function. 

1 13. (Original) The method for using verified information concerning a tangible object of 

2 claim 11, wherein said derivation algorithm is an identity function which produces as output an 

3 identical copy of the input. 

1 14. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation. 
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1 15. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 16. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said step of accessing descriptor data comprises obtaining said descriptor data 

3 from said digital protection system. 

1 17. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said source test data is randomly generated data. 

1 1 8. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said tangible object is a digital data processing device having at least one 

3 processor external to said digital protection system. 

1 19. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said digital protection system of said tangible object includes a coupling for 

3 mating with a local digital data processing device separate from said tangible object. 
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1 20. (Original) A program product for using verified information concerning a tangible object, 

2 said program product comprising a plurality of processor executable instructions recorded on 

3 signal-bearing media, wherein said instructions, when executed by a processor of a digital dala 

4 processing device, cause the digital data processing device to perform the steps of: 

5 accessing descriptor data associated with the tangible object, said descriptor data including 

6 an identity public key for transforming data according to a first public/private key encryption 

7 algorithm, attribute data containing information concerning said tangible object, and a digital 

8 signature; 

9 verifying that said digital signature matches said identity public key and said attribute data; 

1 0 performing a pair of complementary data transformations on source test data to produce 

1 1 resultant test data, said pair of complementary data transformations being performed by: 

12 (a) performing a first data transformation according to said first public/private key 

13 encryption algorithm using said identity public key, and 

14 (b) accessing a digital protection system attached to said tangible object to perform a 

15 second data transformation according to said first public/private key encryption algorithm using 

16 an identity private key in said digital protection system, said identity private key corresponding to 

17 said identity public key according to said first public/private key encryption algorithm, said 

1 8 second data transformation being complementary to said first data transformation; 

19 comparing said source test data with said resultant test data; and 

20 using said attribute data in a manner dependent on the results of said step of verifying that 

21 said digital signature matches said identity public key and said attribute data, and said step of 

22 comparing said source test data with said resultant test data. 
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1 2 1 . (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said digital signature represents an encryption of data derived from 

3 said identity public key and said attribute data according to a derivation algorithm, said encryption 

4 being according to a second public/private key encryption algorithm using a signature private key, 

5 and wherein said step of verifying that said digital signature matches said identity public key and 

6 said attribute data comprises: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 22. (Original) The program product for using verified information concerning a tangible 

2 object of claim 2 1 , wherein said derivation algorithm comprises a hash function. 

1 23. (Original) The program product for using verified information concerning a tangible 

2 object of claim 21, wherein said derivation algorithm is an identity function which produces as 

3 output an identical copy of the input. 

1 24. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said first data transformation is an encryption of said source test data 

3 and said second data transformation is a decryption of said source test data encrypted by said first 

4 data transformation, said first data transformation being performed before said second data 

5 transformation. 
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1 25. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said second data transformation is an encryption of said source test 

3 data and said first data transformation is a decryption of said source test data encrypted by said 

4 second data transformation, said second data transformation being performed before said first data 

5 transformation. 

1 26. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said step of accessing descriptor data comprises obtaining said 

3 descriptor data from said digital protection system. 

1 27. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said source test data is randomly generated data. 
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1 28. (Original) A method for updating attribute data associated with a tangible object, 

2 comprising the steps of: 

3 receiving a request to a service provider from a requestor to update said attribute data, the 

4 request including an identity public key for transforming data according to a first public/private 

5 key encryption algorithm; 

6 performing a pair of complementary data transformations of source test data to produce 

7 resultant test data, a first of said pair of complementary data transformations being performed by 

8 said service provider according to said first public/private key encryption algorithm using said 

9 identity public key, and a second of said pair of complementary data transformations being 

10 performed by requesting a digital protection system attached to said tangible object to perform 

1 1 said second data transformation according to said first public/private key encryption algorithm 

12 using an identity private key in said digital protection system, said identity private key 

13 corresponding to said identity public key according to said first public/private key encryption 

14 algorithm; 

15 comparing said source test data with said resultant test data, said comparing step being 

16 performed by said service provider; and 

17 depending on the results of said step of comparing said source test data with said resultant 

18 test data, generating an updated descriptor, said updated descriptor comprising said identity public 

19 key, updated attribute data, and a digital signature of said identity public key and said updated 

20 attribute data. 

1 29. (Original) The method for updating attribute data of claim 28, wherein said step of 

2 generating an updated descriptor comprises generating said digital signature by encrypting a 

3 derivation of said identity public key and said updated attribute data according to a second 

4 public/private key encryption algorithm using a signature private key. 
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1 30. (Original) The method for updating attribute data of claim 28, wherein said request to 

2 update attribute data includes old attribute data and an old digital signature, said old digital 

3 signature representing an encryption of data derived from said identity public key and said old 

4 attribute data, said encryption being according to a second public/private key encryption algorithm 

5 using a signature private key, said method further comprising: 

6 decrypting said old digital signature according to said second public/private key encryption 

7 algorithm using a signature public key; 

8 comparing the decrypted old digital signature to said data derived from said identity public 

9 key and said old attribute data to verify said attribute data; 

10 wherein said step of generating an updated descriptor further depends on the results of said 

1 1 step of comparing the decrypted old digital signature to said data derived for said identity public 

1 2 key and said old attribute data. 

1 31. (Original) The method for updating attribute data of claim 28, wherein said first of said 

2 pair of complementary data transformations is an encryption of said source test data and said 

3 second of said pair of complementary data transformations is a decryption of said source test data 

4 encrypted by said first transformation, said first transformation being performed before said 

5 second transformation. 

1 32. (Original) The method for updating attribute data of claim 28, wherein said second of said 

2 pair of complementary data transformations is an encryption of said source test data and said first 

3 of said pair of complementary data transformations is a decryption of said source test data 

4 encrypted by said second transformation, said second transformation being performed before said 

5 first transformation. 

1 33. (Original) The method for updating attribute data of claim 28, wherein said service 

2 provider is remote from said tangible object. 
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3 34. (Original) The method for updating attribute data of claim 33, wherein said tangible 

4 object is coupled to a local device, said local device communicating remotely with said service 

5 provider. 

1 35. (Original) The method for updating attribute data of claim 28, further comprising the step 

2 of accessing a database in said service provider to verify that the requestor is entitled to the 

3 requested update. 

1 36. (Original) The method for updating attribute data of claim 28, wherein said source test 

2 data is randomly generated data. 

1 37. (Original) A method for using verified information concerning a tangible object, 

2 comprising the steps of: 

3 accessing descriptor data associated with the tangible object, said descriptor data including 

4 an identity public key for transforming data according to a first public/private key encryption 

5 algorithm, attribute data containing information concerning said tangible object, and a digital 

6 signature, wherein said digital signature represents an encryption of data derived from said 

7 identity public key and said attribute data according to a derivation algorithm, said encryption 

8 being according to a second public/private key encryption algorithm using a signature private key; 

9 decrypting said digital signature according to said second public/private key encryption 

10 algorithm using a signature public key; 

1 1 deriving data from said identity public key and said attribute data using said derivation 

12 algorithm; 

13 comparing the decrypted digital signature to the data derived from said identity public key 

14 and said attribute data according to said derivation algorithm; 

1 5 generating random source test data; 
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1 6 performing a pair of complementary data transformations of said source test data to 

1 7 produce resultant test data, including: 

1 8 (a) performing a first data transformation of said pair of complementary data 

19 transformations according to said first public/private key encryption algorithm using said 

20 identity public key, and 

21 (b) accessing a digital protection system attached to said tangible object to perfoim a 

22 second data transformation of said pair of complementary data transformations, said 

23 second data transformation being according to said first public/private key encryption 

24 algorithm using an identity private key in said digital protection system, said identity 

25 private key corresponding to said identity public key according to said first public/private 

26 key encryption algorithm; 

27 comparing said random source test data with said resultant test data; and 

28 using said attribute data in a manner dependent on the results of said step of comparing the 

29 decrypted digital signature to the data derived from said identity public key and said attribute data, 

30 and said step of comparing said random source test data with said resultant test data. 

1 38. (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation.. 

1 39. (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 
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6 40. (Original) The method for using verified information concerning a tangible object of 

7 claim 37, wherein said step of accessing descriptor data comprises obtaining said descriptor d ata 

8 from said digital protection system. 

1 41 . (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said derivation algorithm comprises a hash function. 

1 42. (Original) The method for using verified information concerning a tangible object of 

2 claim 41, wherein said hash function belongs to the set consisting of SHA-1 and MD5. 

1 43. (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said digital protection system is implemented in digital logic contained on a 

3 single integrated circuit substrate. 



Docket No.: ROC9-2000-0168-US1 
Serial No.: 09/884,636 



15 PATENT 



AMENDMENT 

1 44. (Original) An apparatus for verifying information concerning a tangible object, 

2 comprising: 

3 a programmable processor; 

4 a memory for storing instructions executable on said programmable processor; 

5 a digital protection system interface coupled to said processor, said interface 

6 communicating with a digital protection system for said tangible object; 

7 a protection system verification program executable on said programmable processor, 

8 wherein said protection system verification program 

9 (a) obtains a data descriptor from a said digital protection system through said 

10 interface, said data descriptor comprising an identity public key for transforming data 

1 1 according to a first public/private key encryption algorithm, attribute data containing 

1 2 information concerning said object, and a digital signature; 

13 (b) verifies that said digital signature matches said identity public key and said 

14 attribute data; 

1 5 (c) performs a first data transformation of a pair of complementary data 

16 transformations of source test data which produce resultant test data, said first data 

1 7 transformation being according to said first public/private key encryption algorithm using 

1 8 said identity public key; 

19 (d) directs said digital protection system to perform a second data transformation of 

20 said pair of complementary data transformations of source test data which produce 

21 resultant test data, said second data transformation being complementary to said first data 

22 transformation; 

23 (e) compares said source test data with said resultant test data; and 

24 (f) verifies information concerning the tangible object responsive to steps (b) and (e). 
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1 45. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said digital protection system interface is a physical coupling which supplies 

3 power to said digital protection system. 

1 46. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said digital protection system interface is a remote transmission interface. 

1 47. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said digital signature represents an encryption of data derived from said identity 

3 public key and said attribute data according to a derivation algorithm, said encryption being 

4 according to a second public/private key encryption algorithm using a signature private key, and 

5 wherein said protection system verification program verifies that said digital signature matches 

6 said identity public key and said attribute data by: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 48. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation.. 
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1 49. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 50. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said source test data is randomly generated data. 

1 51. (Original) A method for verifying the identity of a tangible object, comprising the steps 

2 of: 

3 accessing a descriptor associated with the tangible object, said descriptor including an 

4 identity public key for transforming data according to a first public/private key encryption 

5 algorithm; 

6 providing source test data; 

7 performing a pair of complementary data transformations on said source test data to 

8 produce resultant test data, said pair of complementary data transformations being performed by: 

9 (a) performing a first data transformation according to said first public/private key 

10 encryption algorithm using said identity public key, and 

1 1 (b) accessing a digital protection system attached to said tangible object to perform a 

12 second data transformation according to said first public/private key encryption algorithm using 

13 an identity private key in said digital protection system, said identity private key corresponding to 

14 said identity public key according to said first public/private key encryption algorithm, said 

15 second data transformation being complementary to said first data transformation; 

16 comparing said source test data with said resultant test data; and 

17 using said descriptor to identify said tangible object dependent on the results of said step of 

1 8 comparing said source test data with said resultant test data. 



Docket No.: ROC9-2000-0168-US1 
Serial No.: 09/884,636 



18 PATENT 



AMENDMENT 

1 9 52. (Original) The method for verifying the identity of a tangible object of claim 5 1 , wherein 

20 said step of using said descriptor to identify said tangible object comprises using said public 

21 identity key to access identifying information in a database. 

1 53 . (Original) The method for verifying the identity of a tangible object of claim 5 1 , wherein 

2 said descriptor comprises attribute data and a digital signature of said identity public key and said 

3 attribute data, and wherein said step of using said descriptor to identify said tangible object 

4 comprises using said attribute data to identify said tangible object if said digital signature matches 

5 said identity public key and said attribute data. 

1 54. (Original) The method for verifying the identity of a tangible object of claim 5 1 , wherein 

2 said first data transformation is an encryption of said source test data and said second data 

3 transformation is a decryption of said source test data encrypted by said first data transformation, 

4 said first data transformation being performed before said second data transformation.. 

1 55. (Original) The method for verifying the identity of a tangible object of claim 5 1 , wherein 

2 said second data transformation is an encryption of said source test data and said first data 

3 transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 
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1 56. (Withdrawn) A method for providing telephone service, comprising the steps of: 

2 transmitting an identity public key from a telephone to a service provider; 

3 providing source test data, said step of providing source test data being performed by said 

4 service provider; 

5 performing a pair of complementary data transformations of said source test data to 

6 produce resultant test data, by: 

7 (a) performing a first data transformation of said pair of complementary data 

8 transformations according to a first public/private key encryption algorithm using said 

9 identity public key, said performing a first data transformation step being performed by 

1 0 said service provider, and 

1 1 (b) requesting said telephone to perform a second data transformation of said pair of 

12 complementary data transformations according to said first public/private key encryption 

13 algorithm using an identity private key stored in said telephone, and receiving the results of 

14 said second data transformation; 

1 5 comparing said source test data to said resultant test data, said comparing step being 

1 6 performed by said service provider; 

17 providing service to said telephone depending on whether said source test data matches 

1 8 said resultant test data. 

1 57. (Withdrawn) The method for providing telephone service of claim 56, further comprising 

2 the steps of: 

3 transmitting, from said telephone to said service provider, attribute data and a digital 

4 signature of said identity public key and said attribute data; 

5 verifying that said digital signature matches said identity public key and said attribute data; 

6 and 

7 providing service to said telephone depending on whether said digital signature matches 

8 said identity public key and said attribute data. 
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9 58. (Withdrawn) The method for providing telephone service of claim 57, wherein said 

1 0 digital signature representing an encryption of data derived from said identity public key and said 

1 1 attribute data, said encryption being according to a second public/private key encryption algorithm 

12 using a signature private key, and wherein said step of verifying that said digital signature 

1 3 matches said identity public key and said attribute data comprises: 

14 decrypting said digital signature according to said second public/private key encryption 

1 5 algorithm using a signature public key; 

16 comparing the decrypted digital signature to said data derived from said identity public; key 

1 7 and said attribute data to verify said attribute data.. 

1 59. (Withdrawn) The method for providing telephone service of claim 57, wherein said 

2 attribute data includes an identifier identifying said telephone. 

1 60. (Withdrawn) The method for providing telephone service of claim 59, wherein said 

2 identifier comprises a telephone number of said telephone. 

1 61 . (Withdrawn) The method for providing telephone service of claim 56, wherein said first 

2 data transformation is an encryption of said source test data and said second data transformation is 

3 a decryption of said source test data encrypted by said first data transformation, said first data 

4 transformation being performed before said second data transformation.. 

1 62. (Withdrawn) The method for providing telephone service of claim 56, wherein said 

2 second data transformation is an encryption of said source test data and said first data 

3 transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 
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1 63. (Withdrawn) The method for providing telephone service of claim 56, wherein said 

2 telephone is a cellular telephone. 

1 64. (Withdrawn) The method for providing telephone service of claim 56, wherein said 

2 source test data is randomly generated data. 

1 65. (Withdrawn) A telephone, comprising: 

2 a transceiver for communicating with a service provider; 

3 a telephonic interface for audible communication with a user; 

4 an identity public key and corresponding identity private key according to a first 

5 public/private key encryption algorithm; 

6 a digital controller controlling the operation of said telephone, wherein said controller: 

7 (a) causes said telephone to transmit said identity public key to a service provider 

8 with a request for service; 

9 (b) responsive to a request from said service provider, performs a data transformation 

10 of test data received from said service provider according to said first public/private key 

1 1 encryption algorithm using said identity private key; and 

12 (c) transmits the transformed test data to said service provider. 
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1 66. (Withdrawn) The telephone of claim 65, further comprising a digital protection system, 

2 said digital protection system comprising: 

3 (a) an external interface for receiving data requests; 

4 (b) an internal processor coupled to said external interface, said processor capable of 

5 performing said data transformation according to said first public/private key encryption 

6 algorithm; and 

7 (c) an internal data storage; 

8 wherein said identity private key is stored in said internal data storage within said digital 

9 protection system, said identity private key being inaccessible outside said external interface i:o 
1 0 said digital protection system. 

1 67. (Withdrawn) The telephone of claim 66, wherein said digital protection system is 

2 implemented in digital logic contained on a single integrated circuit substrate. 

1 68. (Withdrawn) The telephone of claim 65, further comprising attribute data and a digital 

2 signature of said attribute data and said identity public key, wherein said digital controller further 

3 causes said telephone to transmit said attribute data and said digital signature to said service 

4 provider with a request for service. 

1 69. (Withdrawn) The telephone of claim 68, wherein said digital signature represents an 

2 encryption of data derived from said identity public key and said attribute data, said encryption 

3 being according to a second public/private key encryption algorithm using a signature private key. 

1 70. (Withdrawn) The telephone of claim 68, wherein said attribute data includes an identifier 

2 identifying said telephone. 
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1 71 . (Withdrawn) A method in a telephone service provider for updating attribute data 

2 contained in a telephone, comprising the steps of: 

3 obtaining a descriptor associated with said telephone, said descriptor including an identity 

4 public key for transforming data according to a first public/private key encryption algorithm, 

5 attribute data, and a digital signature; 

6 verifying that said digital signature matches said attribute data and said identity public key; 

7 performing a pair of complementary data transformations of source test data to produce 

8 resultant test data, a first of said pair of complementary data transformations being performed by 

9 said service provider according to said first public/private key encryption algorithm using said 

1 0 identity public key, and a second of said pair of complementary data transformations being 

1 1 performed by requesting said telephone to perform said second data transformation according to 

12 said first public/private key encryption algorithm using an identity private key in said telephone 

13 and receiving data from said telephone responsive to said request, said identity private key 

14 corresponding to said identity public key according to said first public/private key encryption 

15 algorithm; 

1 6 comparing said source test data with said resultant test data; 

1 7 depending on the results of said step of comparing said source test data with said resultant 

1 8 test data, generating an updated descriptor, said updated descriptor comprising said identity public 

19 key, updated attribute data, and a digital signature of said identity public key and said updated 

20 attribute data; and 

21 transmitting said updated descriptor to said telephone. 

1 72. (Withdrawn) The method in a telephone service provider for updating attribute data 

2 contained in a telephone of claim 71 , wherein said step of generating an updated descriptor 

3 comprises generating said digital signature by encrypting a derivation of said identity public key 

4 and said updated attribute data according to a second public/private key encryption algorithm 

5 using a signature private key. 
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6 73. (Withdrawn) The method in a telephone service provider for updating attribute data 

7 contained in a telephone of claim 71, wherein said first of said pair of complementary data 

8 transformations is an encryption of said source test data and said second of said pair of 

9 complementary data transformations is a decryption of said source test data encrypted by said first 
10 transformation, said first transformation being performed before said second transformation. 

1 74. (Withdrawn) The method in a telephone service provider for updating attribute data 

2 contained in a telephone of claim 71 , wherein said second of said pair of complementary data 

3 transformations is an encryption of said source test data and said first of said pair of 

4 complementary data transformations is a decryption of said source test data encrypted by said 

5 second transformation, said second transformation being performed before said first 

6 transformation. 

1 75. (Withdrawn) The method in a telephone service provider for updating attribute data 

2 contained in a telephone of claim 71, wherein said source test data is randomly generated data. 

1 76. (Withdrawn) The method in a telephone service provider for updating attribute data 

2 contained in a telephone of claim 71, wherein said telephone is a cellular telephone. 
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1 77. (Original) A machine having multiple parts, comprising: 

2 a first replaceable part 

3 a digital controller controlling operation of at least one function of said machine, said 

4 digital controller being external to said first replaceable part; 

5 a digital protection system attached to said first replaceable part, said digital protection 

6 system comprising: 

7 (a) an external interface for receiving data requests, 

8 (b) a processor coupled to said external interface, said processor capable of 

9 performing a first data transformation according to a first public/private key encryption 

10 algorithm, and 

11 (c) an internal data storage, said internal data storage storing an identity private key, 

12 said identity private key being inaccessible outside said external interface; and 

1 3 a data descriptor associated with said digital protection system, said data descriptor 

14 including an identity public key, attribute data and a digital signature; 

1 5 wherein said controller verifies information concerning said first replaceable part by: 

16 (a) obtaining said data descriptor associated with said digital protection system, 

1 7 (b) performing a second data transformation of test data according to said first 

1 8 public/private key encryption algorithm using said identity public key, said second data 

19 transformation being complementary to said first data transformation, 

20 (c) accessing said digital protection system attached to said first replaceable part to 

21 perform said first data transformation of said test data using said identity private key, 

22 (d) comparing data undergoing said first and second data transformations to test data 

23 before transformation; and 

24 (e) verifying that said data descriptor has not been altered using said digital signature. 
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1 78. (Original) The machine of claim 77, wherein said digital signature is an encryption of data 

2 derived from said identity public key and attribute data, said encryption being according to a 

3 second public private key encryption algorithm using a signature private key, and wherein said 

4 controller verifies that said data descriptor has not been altered by: 

5 (el) decrypting said digital signature according to said second public/private key 

6 encryption algorithm using a signature public key, and 

7 (e2) comparing the decrypted digital signature to data derived from said identity 

8 public key and said attribute data according to said derivation algorithm to verify said 

9 descriptor data.. 

1 79. (Original) The machine of claim 77, wherein said first data transformation is an 

2 encryption of said source test data and said second data transformation is a decryption of said 

3 source test data encrypted by said first data transformation, said first data transformation being 

4 performed before said second data transformation.. 

1 80. (Original) The machine of claim 77, wherein said second data transformation is an 

2 encryption of said source test data and said first data transformation is a decryption of said source 

3 test data encrypted by said second data transformation, said second data transformation being 

4 performed before said first data transformation. 

1 81 . (Original) The machine of claim 77, wherein said apparatus comprises a plurality of 

2 replaceable parts, at least some of which contain a respective digital protection system. 

1 82. (Original) The machine of claim 8 1 , wherein said machine is a motor vehicle. 

1 83. (Original) The machine of claim 77, wherein said digital protection is implemented in 

2 digital logic contained on a single integrated circuit substrate. 
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3 84. (Original) The machine of claim 83, wherein said data descriptor is stored in said internal 

4 data storage contained on said single integrated circuit substrate. 

1 85. (Original) The machine of claim 84, wherein said data descriptor contains a unique 

2 machine identifier, said unique machine identifier distinguishing said machine from other 

3 machines of the same type. 

1 86. (Original) A replaceable part for a machine having multiple parts, comprising: 

2 a part performing a function for said machine, and 

3 a digital protection system attached to said part, said digital protection system comprising: 

4 (a) an external interface for communicating with a digital controller of said machine, 

5 said digital controller being located externally to said replaceable part; 

6 (b) a processor coupled to said external interface, said processor capable of 

7 performing a data transformation according to a first public/private key encryption 

8 algorithm, and 

9 (c) an internal data storage, said internal data storage storing an identity private key, 

10 said identity private key being inaccessible outside said external interface, and a data 

1 1 descriptor, said data descriptor including an identity public key, attribute data and a digital 

12 signature; 

13 wherein, responsive to a request received through said external interface, said processor of 

14 said digital protection system performs said data transformation according to said first 

1 5 public/private key encryption algorithm using said identity private key. 

1 87. (Original) The machine of claim 86, wherein said machine is a motor vehicle. 
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1 88. (Original) The replaceable part for a machine having multiple parts of claim 86, wherein 

2 . said digital signature is an encryption of data derived from said identity public key and attribute 

3 data, said encryption being according to a second public private key encryption algorithm using a 

4 signature private key, said digital signature being capable of decoding according to said second 

5 public/private key encryption algorithm using a signature public key. 

1 89. (Original) The replaceable part for a machine having multiple parts of claim 88, wher ein 

2 said digital signature is an encryption of data derived from said identity public key and attribute 

3 data by performing a pre-defined hash function. 

1 90. (Original) The machine of claim 86, wherein said digital protection system is 

2 implemented in digital logic contained on a single integrated circuit substrate. 

1 91 . (Original) A method of operating a machine having multiple parts, including a first 

2 replaceable part having a digital protection system and a digital controller external to said first 

3 replaceable part for controlling operation of said machine, said method comprising the steps of: 

4 (a) obtaining a data descriptor associated with said first replaceable part, said data 

5 descriptor including an identity public key, attribute data, and a digital signature; 

6 (b) performing a complementary pair of data transformations of source test data to produce 

7 resultant test data, including a first data transformation performed by said digital controller 

8 according to a first public/private key encryption algorithm using said identity public key, and a 

9 second data transformation performed by said digital protection system, said second data 

1 0 transformation being complementary to said first data transformation; 

1 1 (c) comparing said source test data to said resultant test data; 

12 (d) verifying that said data descriptor has not been altered using said digital signature; and 

1 3 (e) using the results of steps (c) and (d) in the operation of said machine. 
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1 92. (Original) The method of operating a machine of claim 91 , wherein step (e) comprises 

2 presenting information derived from the results of steps (c) and (d) to a user. 

1 93. (Original) The method of operating a machine of claim 91, wherein step (e) comprises 

2 selectively disabling at least one function of said machine responsive to the results of steps (c) and 

3 (d). 

1 94. (Original) The method of operating a machine of claim 91 , wherein said data descriptor 

2 contains a unique machine identifier, said unique machine identifier distinguishing said machine 

3 from other machines of the same type, said method further comprising the step of verifying that 

4 said unique machine identifier in said data descriptor matches a unique machine identifier 

5 associated with said machine. 

1 95. (Original) The method of operating a machine of claim 91 , wherein said first data 

2 transformation is an encryption of said source test data and said second data transformation is a 

3 decryption of said source test data encrypted by said first data transformation, said first data 

4 transformation being performed before said second data transformation. 

1 96. (Original) The method of operating a machine of claim 91 , wherein said second data 

2 transformation is an encryption of said source test data and said first data transformation is a 

3 decryption of said source test data encrypted by said second data transformation, said second data 

4 transformation being performed before said first data transformation. 
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1 97. (Original) A personal identity document for a subject, comprising: 

2 a carrier; and 

3 a digital protection system attached to said carrier, said digital protection system 

4 comprising: 

5 (a) an external interface for receiving data requests, 

6 (b) a processor coupled to said external interface, said processor capable of 

7 performing a data transformation according to a first public/private key encryption 

8 algorithm, and 

9 (c) an internal data storage, said internal data storage storing an identity private key 

10 and a data descriptor, said identity private key being inaccessible outside said external 

1 1 interface, said data descriptor including an identity public key, attribute data and a digital 

12 signature of said identity public key and said attribute data, said identity public key 

13 corresponding to said identity private key according to said first public/private key 

14 encryption algorithm; 

1 5 wherein said processor performs said data transformation of data responsive to a request 

16 received through said external interface, said processor performing said data transformation 

17 according to said first public/private key encryption algorithm using said identity private key. 

1 98. (Original) The personal identity document of claim 97, wherein said attribute data 

2 comprises data identifying a digitized photographic image of said subject. 

1 99. (Original) The personal identity document of claim 97, wherein said attribute data 

2 comprises data identifying said subject according to at least one physical characteristic verified by 

3 a digital data processing device. 

1 100. (Original) The personal identity document of claim 99, wherein said data identifying a 

2 person according to at least one physical characteristic comprises data derived from an iris scan. 
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3 101 . (Original) The personal identity document of claim 99, wherein said data identifying a 

4 person according to at least one physical characteristic comprises data derived from an retina 

5 scan. 

1 102. (Original) The personal identity document of claim 99, wherein said data identifying a 

2 person according to at least one physical characteristic comprises data derived from a voice 

3 sample. 

1 103. (Original) The personal identity document of claim 97, wherein said digital signature is an 

2 encryption of data derived from said identity public key and attribute data, said encryption being 

3 according to a second public private key encryption algorithm using a signature private key, said 

4 digital signature being capable of decoding according to said second public/private key encryption 

5 algorithm using a signature public key. 

1 1 04. (Original) The personal identity document of claim 1 03, wherein said digital signature is 

2 an encryption of data derived from said identity public key and attribute data by performing a pre- 

3 defined hash function. 

1 1 05. (Original) The apparatus of claim 97, wherein said digital protection system is 

2 implemented in digital logic contained on a single integrated circuit substrate. 
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1 106. (Original) A control station for verifying the personal identities of multiple subjects, 

2 comprising: 

3 a programmable processor; 

4 a memory, said memory storing a control program which executes on said programmable 

5 processor and controls at least some operations of said control station; 

6 a digital personal identity document interface, said interface communicating with a digital 

7 personal identity document of a subject; 

8 wherein said control program verifies a personal identity of a subject by: 

9 (a) obtaining a data descriptor from said digital personal identity document of the 

1 0 subject through said interface, said descriptor comprising an identity public key for 

1 1 transforming data according to a first public/private key encryption algorithm, attribute 

12 data containing identifying information concerning said subject, and a digital signature; 

13 (b) verifying that said digital signature matches said identity public key and said 

14 attribute data; 

1 5 (c) performing a pair of complementary data transformations of source test data to 

16 produce resultant test data, said pair of complementary data transformations including (i) a 

1 7 first data transformation according to said first public/private key encryption algorithm 

1 8 using said identity public key, said first data transformation being performed externally to 

19 said digital personal identity document, and (ii) a second data transformation according to 

20 said first public/private key encryption algorithm, said second data transformation being 

21 performed by said digital personal identity document responsive to a request by said 

22 control program; 

23 (d) comparing said source test data with said resultant test data; and 

24 (e) verifying the identity of said subject depending on the results of said step of 

25 verifying that said digital signature matches said identity public key and said attribute data, 

26 and said step of comparing said source test data with said resultant test data. 
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1 1 07. (Original) The control station for verifying the identities of multiple subjects of claim 

2 106, wherein said control station is a passport control station at a jurisdictional entry or exit 

3 location. 

1 108. (Original) The control station for verifying the identities of multiple subjects of claim 

2 106, further comprising an operator interface displaying information to an operator, said 

3 information including a result of steps (b) and (d). 

1 109. (Original) The control station for verifying the identities of multiple subjects of claim 

2 108, wherein said information displayed to said operator further comprises at least some 

3 identifying information derived from said attribute data.. 

1 110. (Original) The control station for verifying the identities of multiple subjects of claim 

2 1 09, wherein said identifying information derived from said attribute data comprises a digitized 

3 photographic image of said subject. 

1 111. (Original) The control station for verifying the identities of multiple subjects of claim 

2 106, further comprising a physical characteristic sensing device, said physical characteristic 

3 sensing device automatically sensing at least one physical characteristic of the subject, said al 

4 least one physical characteristic being compared to identifying data contained in said data 

5 descriptor to verify the identity of said subject. 

1 112. (Original) The control station for verifying the identities of multiple subjects of claim 

2 111, wherein said physical characteristic sensing device is an iris scanning device. 



Docket No. 
Serial No.: 



ROC9-2000-0168-US1 
09/884,636 



34 PATENT 



AMENDMENT 

1 113. (Original) The control station for verifying the identities of multiple subjects of 

2 claim 106, wherein said digital signature represents an encryption of data derived from said 

3 identity public key and said attribute data according to a derivation algorithm, said encryption 

4 being according to a second public/private key encryption algorithm using a signature private key, 

5 and wherein said control program verifies that said digital signature matches said identity public 

6 key and said attribute data by: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 114. (Original) The control station for verifying the identities of multiple subjects of 

2 claim 106, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation. 

1 115. (Original) The control station for verifying the identities of multiple subjects of 

2 claim 106, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 116. (Original) The control station for verifying the identities of multiple subjects of 

2 claim 106, wherein said source test data is randomly generated data. 
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3 117. (Original) A method for verifying the identity of a subject, comprising the steps of: 

4 (a) obtaining a data descriptor from a digital personal identity document of the subject, 

5 said descriptor comprising an identity public key for transforming data according to a first 

6 public/private key encryption algorithm, attribute data containing identifying information 

7 concerning said subject, and a digital signature; 

8 (b) verifying that said digital signature matches said identity public key and said attribute 

9 data; 

1 0 (c) performing a pair of complementary data transformations of source test data to produce 

1 1 resultant test data, wherein a first data transformation of said pair is performed by a verifying 

12 device according to said first public/private key encryption algorithm using said identity public 

1 3 key, and wherein a second data transformation of said pair is performed by said digital personal 

14 identity document responsive to a request from a verifying device, said second data 

1 5 transformation being complementary to said first data transformation; , 

1 6 (d) comparing said source test data with said resultant test data; and 

1 7 (e) verifying the identity of said subject responsive to the results of steps (b) and (d). 

1 118. (Original) The method for verifying the identity of a subject of claim 1 1 7, wherein said 

2 digital signature represents an encryption of data derived from said identity public key and said 

3 attribute data according, said encryption being according to a second public/private key 

4 encryption algorithm using a signature private key, and wherein step (b) comprises the steps of: 

5 decrypting said digital signature according to said second public/private key encryption 

6 algorithm using a signature public key; 

7 comparing the decrypted digital signature to said data derived from said identity public; key 

8 and said attribute data. 
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1 119. (Original) The method for verifying the identity of a subject of claim 1 1 8, wherein said 

2 digital signature is an encryption of data derived from said identity public key and attribute data 

3 by performing a pre-defined hash function. 

1 1 20. (Original) The method for verifying the identity of a subject of claim 1 1 7, wherein said 

2 first data transformation is an encryption of said source test data and said second data 

3 transformation is a decryption of said source test data encrypted by said first data transformation, 

4 said first data transformation being performed before said second data transformation.. 

1 121. (Original) The method for verifying the identity of a subject of claim 1 1 7, wherein said 

2 second data transformation is an encryption of said source test data and said first data 

3 transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 122. (Original) The method for verifying the identity of a subject of claim 1 1 7, further 

2 comprising the step of displaying information to an operator, said information including a result 

3 of step (e). 

1 123. (Original) The method for verifying the identity of a subject of claim 122, wherein said 

2 information displayed to said operator further comprises at least some identifying information 

3 derived from said attribute data.. 

1 124. (Original) The method for verifying the identity of a subject of claim 123, wherein said 

2 identifying information derived from said attribute data comprises a digitized photographic image 

3 of said subject. 
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1 125. (Original) The method for verifying the identity of a subject of claim 1 1 7, further 

2 comprising the steps of: 

3 automatically sensing at least one physical characteristic of the subject with a sensing 

4 device; and 

5 automatically comparing said at least one physical characteristic to identifying data 

6 contained in said data descriptor to verify the identity of said subject. 

1 126. (Original) The method for verifying the identity of a subject of claim 125, wherein said 

2 sensing device is an iris scanning device. 

1 127. (Original) The method for verifying the identity of a subject of claim 1 1 7, wherein said 

2 source test data is randomly generated data. 
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1 128. (Withdrawn) A method for providing television service to a subscriber, comprising the 

2 steps of: 

3 accessing descriptor data in a television receiving apparatus, said descriptor data including 

4 an identity public key for transforming data according to a first public/private key encryption 

5 algorithm, attribute data and a digital signature of said descriptor data; 

6 verifying that said descriptor data has not been altered using said digital signature; 

7 providing source test data; 

8 performing a first data transformation of a pair of data transformations of said source test 

9 data, said pair of data transformations producing resultant test data, said first data transformation 

1 0 being according to said first public/private key encryption algorithm using said identity public 

1 1 key; 

12 requesting a digital protection system of said television receiving apparatus to perform a 

1 3 second data transformation of said pair of data transformations of said source test data, said 

14 digital protection system including 

15 (a) a processor capable of performing said second data transformation according to a first 

1 6 public/private key encryption algorithm; and 

17 (b) a permanent data storage accessible only through said processor, said permanent d ata 

1 8 storage storing an identity private key for performing said second data transformation 

1 9 according to said first public/private key encryption algorithm; 

20 comparing said source test data with the resultant test data to verify the identity of said 

21 digital protection system; and 

22 using said attribute data to access one or more television channels on behalf of said 

23 subscriber depending on the results of said verifying step and said comparing step. 

1 129. (Withdrawn) The method for providing television service of claim 128, wherein said 

2 attribute data comprises keys for accessing a plurality of channel signals. 
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1 130. (Withdrawn) The method for providing television service of claim 129, wherein said keys 

2 for accessing a plurality of channel signals are encrypted. 

1 131. (Withdrawn) The method for providing television service of claim 1 28, wherein said 

2 digital signature represents an encryption of data derived from said identity public key and said 

3 attribute data, said encryption being according to a second public/private key encryption algorithm 

4 using a signature private key, said verifying step comprising: 

5 decrypting said digital signature according to said second public/private key encryption 

6 algorithm using a signature public key; and 

7 comparing the decrypted digital signature to said data derived from said identity public; key 

8 and said attribute data to verify said descriptor data. 

1 132. (Withdrawn) The method for providing television service of claim 128, wherein said first 

2 data transformation is an encryption of said source test data and said second data transformation is 

3 a decryption of said source test data encrypted by said first data transformation, said first data 

4 transformation being performed before said second data transformation.. 

1 133. (Withdrawn) The method for providing television service of claim 128, wherein said 

2 second data transformation is an encryption of said source test data and said first data 

3 transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 
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1 134. (Withdrawn) A television receiving system, comprising: 

2 a digital controller controlling the operation of said television system; 

3 a television signal transmission interface coupled to said digital controller, said interface 

4 receiving televisions signals from an external source and transmitting television signals to a 

5 display apparatus; 

6 a digital protection system coupled to said digital controller, said digital protection system 

7 securely storing an identity private key, and said digital protection system performing a first data 

8 transformation according to a first public/private key encryption algorithm in response to a 

9 command from said digital controller; 

10 a data descriptor associated with said digital protection system, said data descriptor 

1 1 including an identity public key for performing data transformations according to said first 

12 public/private key encryption algorithm, attribute data and a digital signature; 

13 wherein said controller: 

14 (a) directs said digital protection system to perform said first data transformation of 

15 test data; 

16 (b) performs a second data transformation of test data according to said first 

1 7 public/private key encryption algorithm using said identity public key; 

18 (c) compares test data before transformation with test data after said first and said 

19 second transformation, 

f 20 (d) verifies that said digital signature matches said identity public key, and 

21 (e) uses said attribute data to access television channels on behalf of a user responsive 

22 to the results of steps (c) and (d). 

1 135. (Withdrawn) The television receiving system of claim 1 34, wherein said television signal 

2 transmission interface receives television signals from a satellite receiver. 
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1 136. (Withdrawn) The television receiving system of claim 134, wherein said attribute data 

2 comprises keys for accessing a plurality of channel signals. 

1 137. (Withdrawn) The television receiving system of claim 1 36, wherein said keys for 

2 accessing a plurality of channel signals are encrypted. 

1 138. (Withdrawn) The television receiving system of claim 134, wherein said digital signature 

2 represents an encryption of data derived from said identity public key and said attribute data, said 

3 encryption being according to a second public/private key encryption algorithm using a signaxure 

4 private key, said verifying step comprising: 

5 decrypting said digital signature according to said second public/private key encryption 

6 algorithm using a signature public key; and 

7 comparing the decrypted digital signature to said data derived from said identity public: key 

8 and said attribute data to verify said descriptor data. 

1 1 39. (Withdrawn) The television receiving system of claim 1 34, wherein said first data 

2 transformation is an encryption of said source test data and said second data transformation is a 

3 decryption of said source test data encrypted by said first data transformation, said first data 

4 transformation being performed before said second data transformation. 

1 140. (Withdrawn) The television receiving system of claim 1 34, wherein said second data 

2 transformation is an encryption of said source test data and said first data transformation is a 

3 decryption of said source test data encrypted by said second data transformation, said second data 

4 transformation being performed before said first data transformation. 
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